RE: Sniffing on a switch

["Todd Towles" <toddtowles () brookshires com>]

If you don't have port forwarding in your Linux kernel that would be a
problem..however. Ettercap creates a MITM attack. 

> -----Original Message-----
> From: mike jablonski [mailto:mkj () swissmail org] 
> Sent: Saturday, October 29, 2005 12:19 AM
> To: Andy Meyers
> Cc: pen-test () securityfocus com
> Subject: Re: Sniffing on a switch
>
> hahaha  YES you can!!  ;)
>
> http://ettercap.sourceforge.net/
>
> This is a great sniffing tool.  If you don't have admin 
> rights to setup mirroring on the switch; use ettercap.  
>
> Have fun!
> --
> jabber
> "paranoid by default"
>
>
> Quoting Andy Meyers <andy.meyers () hushmail com>:
>
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> > Now i know people say you "cant" sniff on a switch and I 
> know about ARP
> > poisoning and MAC flooding. But there has to be another 
> way. I have heard
> > too many stories about "he sniffed my AIM conversation on a 
> Cisco switch"
> > (an example is in the most recent version of 2600). Does 
> anyone know of any
> > technique how to do this? Can you ARP poison a switch?
> >
> > Ashes
> > -----BEGIN PGP SIGNATURE-----
> > Note: This signature can be verified at 
> https://www.hushtools.com/verify/
> > Version: Hush 2.4
> > Charset: UTF8
> >
> > wkYEARECAAYFAkNhkwYACgkQnZu7yPmLRpArTQCgp2JsbOSySZJ7XFvgy1sY4GcGntYA
> > oIwtV7CLTBjr5j2yW0v1In/Jm7Yv
> > =rigp
> > -----END PGP SIGNATURE-----
> --------------------------------------------------------------
> ----------------
> > Audit your website security with Acunetix Web Vulnerability 
> Scanner: 
> > Hackers are concentrating their efforts on attacking 
> applications on your 
> > website. Up to 75% of cyber attacks are launched on 
> shopping carts, forms, 
> > login pages, dynamic content etc. Firewalls, SSL and 
> locked-down servers are
> > futile against web application hacking. Check your website for
> > vulnerabilities 
> > to SQL injection, Cross site scripting and other web 
> attacks before hackers
> > do! 
> > Download Trial at:
> >
> > http://www.securityfocus.com/sponsor/pen-test_050831
> --------------------------------------------------------------
> -----------------
> >
>
>
> --------------------------------------------------------------
> ----------------
> Audit your website security with Acunetix Web Vulnerability Scanner: 
>
> Hackers are concentrating their efforts on attacking 
> applications on your 
> website. Up to 75% of cyber attacks are launched on shopping 
> carts, forms, 
> login pages, dynamic content etc. Firewalls, SSL and 
> locked-down servers are 
> futile against web application hacking. Check your website 
> for vulnerabilities 
> to SQL injection, Cross site scripting and other web attacks 
> before hackers do! 
> Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> --------------------------------------------------------------
> -----------------

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------